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Listing of Claims 



1 (Currently Amended): Amethodofsupportingnetworkaddresstranslation(NAT) 
in a service selection g ateway fSSG") device , said SSG connecting a plurality of remote 
systems on a network to a plurality of service domains, each of said plurality of remote 
systems being assigned a corresponding one of a plurality of original addresses, wherein each 
of said plurality of new addresses is used for one of said plurality of remote systems in a 
corresponding service domain, eachofsaidpluralityoforiginaladdressescomprisingalocal 
address in said network and each of said plurality of new addresses comprisinganextemal 
address for the remote system in the service domain, said method being perfomied in said 
SSG, said method comprising: 

maintaining a plurality of NAT tables in said gateway device , wherein each of said 
plurality of NAT tables maintains a corresponding plurality of entries representing a 
mapping information of original addresses to corresponding new addresses . \Mherein said 
plurality of entries are partitioned according to service domains such that entries 
corresponding to each service domain are stored in a single one of said plurality of NAT 
tables, wherein an entry corresponds to a service domain if the corresponding new address 
is in the service domain: 

receiving a packet containing an original address; 

translating said address into a new address by examining one of said plurality of NAT 

tables; 

substituting said new address for said original address in said packet to generate a 
new packet, and 

sending said new packet. 

2 (Canceled) 

3 (Currently Amended): The method of claim 1 2, wherein each of said plurality of 
NAT tables stores NAT information corresponding to one of said plurality of service 
domains only. 
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4 (Currently Amended): The method of claim I 2, wherein at least one of said 
plurality of NAT tables stores all mapping information related to at least two of said plurality 
of service domains, wherein extemal addresses provided for mapping by said at least two of 
said plurality of service domains do not overlap. 

5 (Currently Amended): The method of claim 1 2, wherein said original address 
comprises said local address, and said translating comprises mapping said local address to 
said extemal address, wherein said extemal address is assigned to said remote system by said 
service domain accessed by said remote system. 

6 (Original): The method of claim 5, further comprising: 

determining a service domain to which said packet relates to, wherein said service 
domain is comprised in said plurality of service domains; and 

sending said packet to an upstream NAT block which performs said substitution. 

7 (Original): The method of claim 6, wherein said remote system communicates with 
said SSG on a point-to-point protocol (PPP) session, said method further comprising: 

assigning said local address to said remote system when said PPP session is set up; 

storing in said SSG data representing a setofservicesavailable forpackets received 
fiom said remote system, wherein said determining comprises examining a destination 
address in said packet to identify said service domain to which said packet relates to. 

8 (Original): The method of claim 7, wherein a separate upstream NAT block 
associated with each of said plurality ofNAT tables. 

9 (Original): The method of claim 8, further comprising maintaining a separate 
forwarding table associated with the service domains sharing the same NAT table. 

10 (Currently Amended): Themethodofclaim i 2, wherein said packet is received 
from said service domain and destined to said first remote system, and wherein said original 
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address comprises said external address of said remote system. 

1 1 (Original): The method of claim 10, further comprising: 
maintaining a global forwarding table; and 

determining a route to send said packet by examining said global forwarding table, 
wherein said determining is performed after said substituting. 

12 (Currently Amended): The method of claim 1 2, wherein said packet is received 
according to Internet Protocol (IP). 

13 (Currently Amended): A serviceselection g ateway rSSG^ device supporting 
network address translation (NAT), said SSG connecting a plurality of remote systems on 
a network to a plurality of service domains, each ofsaid plurality of remote systems being 
assigned a corresponding one of a plurality of original addresses, wherein each of said 
plurality of new addresses is used for one of said plurality of remote systems in a 
corresponding service domain, eachofsaidpluralitvoforiginaladdressescomprisingalocal 
address in said network and each of said plurality of new addresses comprisinganextemal 
address for the remote system in the service domain, said SSG g ateway device comprising: 

means for maintaining a plurality of NAT tables in said gateway device , wherein each 
of said plurality of NAT tables maintains a corresponding plurality of entries representing 
a mapping information of original addresses to corresponding new addresses , wherein said 
plurality of entries are partitioned according to service domains such that entries 
corresponding to each service domain are stored in a single one of said plurality of NAT 
tables, wherein an entry corresponds to a service domain ifthe corresponding new address 
is in the service domain: 

means for receiving a packet containing an original address; 

means for translating said address into a new address using one of said plurality of 
NAT tables; 

means for substituting said new address for said original address in said packet to 
generate a new packet; and 
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means for sending said new packet. 

14 (Canceled) 

1 5 (Currently Amended): The gateway device SSG of claim 13 14, wherein said 
means for storing stores NAT information corresponding to one of said plurality of service 
domains only in each of said plurality of NAT tables. 

16 (Currently Amended): The gateway devic e SSG of claim 13 i4, wherein at least 
one of said plurality of NAT tables stores NAT information related to at least two of said 
plurality of service domains, wherein said at least two ofsaid plurality of service domains 
have non-overlapping address space accessible by said remote systems. 

17 (Currently Amended): The gateway devic e SSG of claim 13 wherein said 
original address comprises saidlocaladdress,andsaidtranslatingcomprisesmappingsaid 
local address to said external address, wherein said external address is assigned to said 
remote system by said service domain accessed by said remote system. 

18 (Currently Amended): The gateway device SSG of claim 17, wherein said packet 
is received from said remote system and said original address comprises said local address, 
said gateway device further comprising: 

means for determining a service domain to v^ich said packet relates to, wherein said 
service domain is comprised in said plurality of service domains; and 

means for sending said packet to an upstream NAT block which performs said 
substitution. 

19 (Currently Amended): The gateway device SSG of claim 1 8, wherein said remote 
system communicates with said SSG on a point-to-point protocol (PPP) session, said 
gateway device further comprising: 

means for assigning said local address to said remote system when said PPP session 
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is set up; and 

means for storing data representing a set of services available for packets received 
fiom said remote system, wherein said means for determining examines a destination address 
in said packet to identify said service domain to which said packet relates to. 

20 (Original): A computer readable medium carrying one or more sequences of 
instructions for causing a service selection g ateway (SSG") device to support network address 
translation(NAT), said SSG connecting a plurality of remote systems on a network to a 
plurality of service domains, each of said plurality of remote systems being assigned a 
comesoonding one of a plurality of original addresses, wherein each of said plurality of new 
addresses is used for one of said plurality of remote systems in a conesponding service 
domain, each of said plurality of original addresses comprising a local address in said 
network and each of said plurality of new addresses comprisinganexternaladdressforthe 
remote system in the service domain, said method being performed in said SSG, wherein 
execution of said one or more sequences of instmctions by one or more processors contained 
in said gateway device causes said one or more processors to perform the actions of: 

maintaining a plurality of NAT tables in said SSG gateway d e vice , wherein each of 
said plurality of NAT tables maintains a corresponding plurality of entries representing a 
mapping information of original addresses to conesponding new addresses , wherein said 
plurality of entries are partitioned according to service domains such that entries 
corresponding to each service domain are stored in a single one of said plurality of NAT 
tables, wherein an entry corresponds to a service domain if the corresponding new address 
is in the service domain: 

receiving a packet containing an original address^ 

translating said address into a new address using one of said plurality of NAT tables; 
substituting said new address for said original address in said packet to generate a 
new packet; and 

sending said new packet. 



21 (Canceled) 
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22 (Currently Amended): Thecomputerreadablemediumofclaim 20 wherein 
each of said plurality of NAT tables stores a NAT information corresponding to one of said 
plurality of service domains. 

23 (Currently Amended): Thecomputerreadablemediumofclaim 20 wherein 
at least one of said plurality of NAT tables stores NAT information related to at least two of 
said plurality of service domains, wherein said at least two of said plurality of service 
domains have non-overlapping address space accessible by said remote systems. 

24 (Currently Amended): The computer readablemediumofclaim ^ 2t, wherein 
said originaladdresscomprisessaidlocal address, and said translating comprisesmapping 
said local address to said extemal address, wherein said external address is assigned to said 
remote system by said service domain accessed by said remote system. 

25 (Original): The computer readable medium ofclaim 24, further comprising: 
determining a service domain to wiiich said packet relates to, wherein said service 

domain is comprised in said plurality of service domains; and 

sending said packet to an upstream NAT block which performs said substitution. 

26 (Original): The computer readable medium of claim 25,wherein said remote 
system communicates with said SSG on a point-to-point protocol (PPP) session, further 
comprising: 

assigning said local address to said remote system when said PPP session is set up; 

storingin said SSGdatarepresentinga setof servicesavailable for packets received 
from said remote system, wherein said determining comprises examining a destination 
address in said packet to identify said service domain to which said packet relates to. 

27 (Original): The computer readable medium of claim 26, wherein a separate 
upstream NAT block is associated with each of said plurality of NAT tables. 
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28 (Original): The computer readable medium of claim 27, further comprising 
maintaining a separate forwarding table associated with the service domains sharing the 
same NAT table. 

29 (Original): The computer readable medium of claim 24, wherein said packet is 
received from said service domain and destined to said first remote system, and wherein said 
original address comprises said extemal address of said remote system. 

30 (Original): The computer readable medium of claim 29, further comprising: 
maintaining a global forwarding table; and 

determining a route to send saidpacketby examining said global forwardingtable, 
wherein said determining is performed after said substitution. 

31 (Original): The computer readable medium of claim 24, wlierein said packet is 
received according to Internet Protocol (EP). 

32 (Currently Amended): A service selection g ateway (SSG") device supporting 
network address translation (NAT), said SSG connecting a plurality of remote systems on 
a network to a plurality ofservice domains, each ofsaid plurality ofremote systems being 
assigned a corresponding one of a plurality of original addresses, wherein each of said 
plurality of new addresses is used for one of said plurality of remote systems in a 
corresponding service domain, eachofsaidpluralitvoforiginaladdressescomprisingalocal 
address in said netwoik and each ofsaid plurality of new addresses comprisinganextemal 
address for the remote system in the service domain, said SSG g ateway device comprising: 

a memory storing a plurality of NAT tables representing information related to 
netwoik address translation, wherein each ofsaid plurality of NAT tables maintains a 
corresponding plurality of entries representing a mapping information of original addresses 
to corresponding new addresses , wherein said plurality of entries are partitioned according 
to service domains such that entries corresponding to each service domain are stored in a 
single one ofsaid plurality ofNAT tables, wherein an entry corresponds to a service domain 
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if the con^sponding new address is in the service domain; 

an inbound interface receiving a packet containing an original address; 

a NAT block translating said address into a new address using one of said plurality 
of NAT tables and substituting said new address for said original address in said packet to 
generate a new packet; and 

an outbound interface sending said new packet. 

33 (Canceled) 

34 (Currently Amended): The gateway device of claim ^ 33-, v^erein each of said 
plurality of NAT tables stores a NAT information corresponding to one of said plurality of 
service domains. 

35 (Currently Amended): The gateway devic e SSG of claim 32 33^, wherein at least 
one of said plurality of NAT tables stores NAT information related to at least two of said 
plurality of service domains, wherein said at least two of said plurality of service domains 
have non-overlapping address space accessible by said remote systems. 

36 (Currently Amended): The gateway device SSG of claim 31 33-, wherein said 
original address comprises said local address, and said translating comprises mapping said 
local address to said external address, wherein said extemal address is assigned to said 
remote system by said service domain accessed by said remote system. 

37 (Cun^ently Amended): The gateway device SSG of claim 36, wherein said packet 
is received from said first remote system and said original address comprises a source 
address of said first remote system. 

38 (Currently Amended): The gateway device SSG of claim 37, further comprising: 
a service selection table storing data indicating a mapping of each packet to a 

corresponding one of said plurality of service domain; and 
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a service selector determining a service domain to which said packet relates to by 
examining said service selection table, wiierein said service domain is comprised in said 
plurality of service domains and sending said packet to said NAT block. 

39 (Currently Amended): The gatcw^ay device SSG of claim 38, wherein a separate 
upstream NAT block associated with each of said plurality of NAT tables. 

40 (Currently Amended): The gateway device SSG of claim 39, further comprising 
a separate forwarding table associated with the service domains sharing the same NAT table. 

41 (Currently Amended): The gateway device SSG of claim 36, wherein said packet 
is received fiom said service domain and destined to said first remote system, and wherein 
said original address comprises said external address of said remote system. 

42 (Currently Amended): The gateway device SSG of claim 41, further comprising: 
a global forwarding table; and 

a forwarding block determining a route to send said packet by examining said global 
forwarding table, wherein said forwarding block determines said route after said substituting. 

43 (Currently Amended): The gateway device SSG of claim 36, wherein said packet 
is received according to Internet Protocol (IP). 

44 (Currently Amended): The gateway device SSG of claim 32 33-, wherein said 
memory is implemented as a plurality of units. 
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